Sybase defines a security mechanism as external software that provides security services for a connection. Different platforms can use different security mechanisms.
Both Microsoft Windows NT LAN Manager (SSPI) and Kerberos provide security services for servers and clients on Microsoft Windows.
You can specify the security mechanisms that a server supports in sql.ini or a directory service:
The optional secmech line in sql.ini entry specifies the security mechanisms that a server supports.
The optional secmech attribute in a directory service entry describes the security mechanisms that a server supports.
When a client gets the server’s address, it can verify that the server supports the security mechanism that the client is using:
If there is a secmech line or attribute and security mechanisms are listed, then only those security mechanisms are allowed.
If there is no secmech line or attribute, then all security mechanisms are allowed.
If there is a secmech line or attribute, but no security mechanisms are listed, then the server does not support any security mechanisms.
